On Tue, 12 Nov 2024 at 16:22, Traut Manuel LCPF-CH <manuel.tr...@mt.com> wrote: > > Hi Ilias, > > On Tue, Nov 12, 2024 at 03:46:48PM +0200, Ilias Apalodimas wrote: > > Hello Manuel, > > > > On Tue, 12 Nov 2024 at 15:21, Traut Manuel LCPF-CH <manuel.tr...@mt.com> > > wrote: > > > > > > Hi, > > > > > > systemd-boot counting logic requires [0] to be implemented. > > > > > > Is anybody already working on this? > > > > I am not aware of any patches > > thanks for the quick response. > > > > If not we plan to add the functionality in fs/fs.c and fs/fat - correct? > > > > We don't have plans for it, but explaining any use cases you have might help > > systemd-boot is able to do bootcounting by renaming the UKI image [0] > the code that triggers the not implemented code section is here [1]. > > With this it is possible to have watchdog based A/B switching on systems > without a writeable u-boot environment. And therefore it is a nice > method to implement measured boot.
The A/B is ok, but I cant understand how that realted to measured boot. The TPM access, UKI infrastucture etc, will work fine without A/B Thanks /Ilias > > Regards > Manuel > > [0] > https://uapi-group.org/specifications/specs/boot_loader_specification/#boot-counting > [1] > https://github.com/systemd/systemd/blob/3304a029b847e87da51f7a8ad8c118111508e009/src/boot/boot.c#L1407 > > > Cheers > > /Ilias > > > > > > Cheers > > > Manuel > > > > > > [0] > > > https://elixir.bootlin.com/u-boot/v2025.01-rc1/source/lib/efi_loader/efi_file.c#L971
